Encryption Books

As always Simon Singn takes the reader on a fantastic trip through History. Filled with entertaining stories, puzzles and heroic events, the author skillfully covers the history of secret writing. If you liked his coverage of Fermat's Enigma then you will definitely enjoy this book.

The prose is capturing, deep enough to fascinate technical readers and light enough to just entertain the casual reader. I specialized in Quantum computers while studying Mathematics and I am astonished that the author manages to explain such non-trivial subjects as quantum computers and cryptography to the degree where ordinary readers can actually understand how they work and their impact on ciphers such as RSA/DSA. In short another great read from one of the best and most entertaining technical writers who ever lived.

Simon Singh books usually hold you from the first page and till the end. "The code book" is very well written and very informative. You will see how it's started and where cryptography goes, but even more interesting part of history of cryptography - life (sometimes secret life) of people who worked and continue to work on development of cryptosystems.

Nutshell review - This is an excellent book covering the history of cryptography up to present day and into the near future. Very well written, easy to understand and worth reading by any layperson interested in the topic.

If you want to know about codes, secrets, cryptography and cryptanalysis then this is the book. Simon Singh presents the history of codes in a clear and simple way. Without the mathematics to disturb the flow of the story, you enjoy plots, conspiracies, secrets and algorithms. Excellent for general knowledge and for an introductory text in cryptanalysis. Buy it!

great book regarding the history of cryptography. The only way to truly understand anything is c the history of it's introduction

I bought this book as an additional material to study for the CISA exam. However it didn't help me with the exam at all. Furthermore, in an attempt to cover many things, it did not cover anything in detail. This book is just an endless recollection of bullet points. On top of that, it misses very sensitive topics like disaster recovery planning.

Audit is not the most exciting topic in the world, but this no fluff book really sets the standard. The care the authors took is obvious from the start, the table of contents is one of the most detailed I have ever seen, it allows the book to be used as a reference.

My favorite chapter was Quality Management, best job of making quality approachable I have seen to date. My least favorite was Project Management, it seemed to lack the application and lean to theory a bit.

I am not an auditor, but as an auditee, this book really helped me understand how they think. Recommended!

Not having much experience in the IT audit field, this book was a great resource and was easy to understand.

This book has some material relevant to the CISA examination based on the 2003 content areas, although it is not organized or focused as a CISA examination guide. If you are looking for CISA review material for the test, I would strongly suggest to stick with ISACA's combination of review manual and questions CD. I also searched everywhere for study aids for this grueling test and ended up using ISACA's expensive material, but it proved to be the best choice as I passed the Dec 2006 test.

However, as owner of a copy of this book, I assure you that this is an excellent reference of IT management, planning, implementation, risk assessment and control procedures for anyone in the IT business. Most of the material is still relevant as of 2007.

This is a huge book but spends no more then 1 page on any topic. In my opinion the authors only have financial audit experience and little understanding of IT controls. This book shows the failure of the 'integrated auditor' as the authors are tyring to be IT auditors with little IT experience. They touch on some very good points in a few instances and, in general, the book is decent. The authors do not know much outside of the CISA, IIA and financial based certifications as they seem to think that the ISSA (Information Systems Security Assoc.) is sponsored by ISC2/CISSP's (it is not). Overall, I have not been impressed with this book.

This book is absolutely awesome. It's very organized, which is my number one need in a book. It's narrowed down, it's technical, but Ed writes things in a way that just sticks. The way this book starts out is very logical, it's a progression. It starts you off with:

-TCP/IP(Which is a must)
-Windows Overview(Which is a must)
-Unix/Linux Overview(Get the picture?)

Then it goes into
-Recon(gathering information)
-Scanning(Port Scanning, and Vulnerability scanning)
-Gaining access- This chapter explains Boffer Overflows very well, and
Metasploit)--I enjoyed this chapter.

-Network Attacks( Privelage Escalation, hoping from one computer to the next, collecting passwords by sniffing)
-Maintaining Access(Backdoors, viruses, Rootkits)
-Covering tracks

This book is just a good read. I think I'm going to read again, this time taking notes. I tried to read Hacking Exposed, but it jumps around to much, and it's boring. My two cents.

This is great book I would recomend it to someone interested in learning the basic fundamentals of computer security.

Nutshell review - Another great book by Ed Skoudis. Covers all the popular attack vectors and a variety of possible defence techniques. A solid book from which further study and investigation can be undertaken. Management people should read this too.

Counter Hack Reloaded (CHR) is an excellent book for someone looking for a broad overview of computer/network security written in a very clear, logical, and even enjoyable manner.

After CHR's Introductory chapter, the reader is given an overview on Networking, Linux/Unix, and Windows. These three chapters give the reader enough to be able to understand the subsequent chapters which deal with specific phases of an attack. These phases are, Reconnaissance, Scanning, Gaining Access (with different chapters for different methods of gaining access,) Maintaining Access, and Covering Tracks. Throughout these chapters, CHR introduces the reader to the tools used by attackers; how they work, where to get them, and how to defend yourself against them (often by using the tools themselves.) Finally, CHR "puts it all together" with different scenarios of attacks. The scenarios show how attackers use different phases of an attack, and different tools, to penetrate a network/system. Throughout this chapter CHR highlights the mistakes the victims make in their networks/systems to allow the attacks to succeed.

CHR is exceptionally well written, especially for a technical subject. Explanations of complex topics are clear, simple and even entertaining. I would even go so far to say that it is a joy to read.

Overall, CHR is about core concepts. It's about understanding how attacks occur, and understanding why they can succeed. Only then can you have any hope in understanding how to go about defending yourself.

I'm technically not finished reading this book yet and probably never will be until they update it again and still it will be a good reference manual for several years anyway. Skoudis and Liston do have a way of making complex issues seem to make sense. I thank them for writing it and thank Amazon for making it available to me.

I just finished going through the entire book line by line. I am extreemly new to Linux and security, and this book made it all very clear. I only wish I realized that there was a second edition out when I bought this one. Everything in this original edition was still completely correct and appropriate, three years later.

I'm a big fan of the Hacking Exposed style of writing. All offensive theory is backed up by command line examples, followed by defensive countermeasures. Hacking Exposed: Linux, 2nd Ed (HE:L2E) follows this tradition, updating the content of the first edition and adding 200 pages of new content. Although I reviewed the first edition in Sep 01, reading the second edition reminded me of the challenges posed by securely configuring and deploying Linux systems.

The best way to learn while reading HE:L2E is to try the sample commands. I also recommend visiting the links mentioned and installing many of the tools described by the authors. I found programs like raccess, nsat (ch. 3), sslsniff (ch. 7), nstx, and httptunnel (ch. 15) particularly interesting from an attacker's point of view. From a system administration standpoint, coverage of passlogd (ch. 2), lilo and grub (ch. 5), and X (ch. 6) were very helpful.

The authors share many novel ways to abuse Linux systems, but counter those exploits with little-known features or third-party tools. I never knew I could use bash's HISTCONTROL feature to selectively remove entries from shell history files. HE:L2E goes the extra mile to help secure your system, such as including sample C code in ch. 13 to allow one to compile TCP Wrappers support into one's own programs. Other clear, concise defensive measures were introduced in excellent chapters on keeping the kernel and packages current (appendix B) and pro-active security measures (ch. 2). The last appendix gives a short yet powerful description of the damage an intruder can perform, showing how he hid unauthorized programs and how those programs were discovered.

If you use Linux, you'll find HE:L2E indispensable. I even applied many of the tools and techniques to my FreeBSD system, showing that that good security advice can be a cross-platform endeavor.

The Hacking Exposed books have set the bar for this genre of security book. Hacking Linux Exposed - 2nd Edition doesn't fail in meeting that bar as well. If you've read Hacking Exposed - 4th Edition and think this book can't tell you anything you don't already know- think again. For those who administer Linux boxes this book provides an in-depth look at specific hacks and vulnerabilities unique to the Linux operating system and the accompanying fixes and workarounds to protect yourself. The book is overflowing with examples and sample commands that users can immediately put to use to better understand the risks and how to mitigate them. Hacking Exposed is a must-read for security- this book is a must-read for Linux security.

(...)

First, this book does _NOT_ have a installation walk through...YES!!!

You will not find another book this comprehensive in the length in HLE has accomplished. i found the book to be on point, and not overdrawn on any specific topic. The authors usage of gender is something of a mystery aswell. For the first 10 chapters or so the cracker is a woman, then in later chapters it becomes a man, then in even later chapters a woman, then back to a man :-).

i found the book to be very well written, it feels like a very good naration. There is only a few plugs of direct humor (1 about using word for the publisher, another about the shortest sentence using all letters) but these few are lightening.

Technically this book is sound. it does very good in keeping the basics of security alive through the book (chattr +i, only use what you need, upgrade, etc...). This is very helpful to a beginer for reinforced learning. The software packages it mentions for firewalls, logging, etc. are very nice and descriptive.

All around great book. BTW, did i mention that is does _NOT_ cover a Linux installation from CD/DVD? That alone should be enough to buy it.

When I first starting using Linux systems and putting them online I had NO idea what sort of grief I was in for. The reason for that grief: I had NO clue how to 'harden' a system or what that term even meant. By not knowing that I put up systems that were quickly exploited by script kiddies and SPAM houses looking for open relays to use for SPAM and for 'zombies' to use in Distributed Denial of Service (DDoS) attacks. I bought this book, read it, and haven't had those problems since. If you are going to do *anything* with Linux on the internet then GET THIS BOOK NOW. Unless, of course, you *want* to have your computers destroyed on a weekly basis...

This book is trash. This is just a printed version of textfiles.com that gives you all of the "lost" files for free. This is just a horrible book that takes advantage of people not using google first to find free information.

I think this book is equivalent to somebody filling up a bottle with tap water and selling it for 20 dollars as pure water found in the most secret places.

this book is culled from sources across the internet, almost all of the information is freely available somewhere. in most cases the author has not even bothered to change the filenames or unique file extensions. the book itself is barely an index of the cd-rom, with the first paragraph of a file serving as a description. there is some (un)original writing done by the author himself, comprising a miniscule amount of the actual text. if you would like to learn what these files are actually about, you would be much better served by going to the sites they were taken from

The widespread availability of computers and access to telephone and Internet technologies has contributed to the sharp rise in the number of people going online over the years. Unfortunately, many of these people found their way online through less-than-honest means, and once online, they would set out to perform a great deal of mischief and damage to various computers and computer information systems.

Hack Attacks Encyclopedia edited by John Chirillo serves as the ultimate source for collected information on the history of hacking, cracking, and phreaking. The book features nearly 2,000 text and HTML document extracts that includes news articles, online postings, and other snippets of insightful information. Some of the accounts are startling. Readers will quickly pick up just how clever some hackers, crackers, and phreakers really are. The following snippet exemplifies available talent in Northern America:

"Silver Spy has everything going for him - comfortable surroundings, a father who is an engineer. He ranks in the top 3 percent of his high-school class. His SAT scores for college admission totaled 1,400 of a possible 1,600. He wants to attend Stanford or the Massachusetts Institute of Technology. But in the eyes of the phone companies he is a thief, and in the eyes of the law he's a criminal. Such is the portrait of this 17-year-old computer "hacker" and "phone phreaker" who lives about 20 miles outside Boston. He spoke with U.S. News & World report on the condition that neither his real name nor home town be revealed."

The Hack Attack Encyclopedia is broken up into major sections by decade - the 70's, the 80's, the 90's, the Millennium, and a special historical synopsis. From beginning to end, readers will be able to follow the history of mischievous behavior. It will be an eye-opening experience for anyone to follow the advancements made in communications technologies and how they can be easily circumvented and otherwise compromised to carryout further activities. Although some of the technologies disclosed in the book are outdated and have been replaced, readers will still gain helpful insight of the mindset of hackers, crackers, and phreakers operating today. They are a force to be taken very seriously.

An extensive 217-page glossary of terms will enlighten readers about the slang talk used in the hacking, cracking, and phreaking communities. As a special bonus, the CD accompanying the book features full-length editions of the article and snippet extracts included in the book, hundreds of computing and Internet exploits, and a sampling of useful utility programs.

Hacking, cracking, phreaking, and virus infection still poses problems for many people today. This book will open the eyes of many people - including business people, IT managers, and law enforcement officials. It will serve as an excellent starting point for taking necessary corrective action to prevent further mischief and harm caused to personal and company computer systems. I can't wait to see an updated edition. Highly recommended reading.

this book is culled from sources across the internet, almost all of the information is freely available somewhere. in most cases the author has not even bothered to change the filenames or unique file extensions. the book itself is barely an index of the cd-rom, with the first paragraph of a file serving as a description. there is some (un)original writing done by the author himself, comprising a miniscule amount of the actual text. if you would like to learn what these files are actually about, you would be much better served by going to the sites they were taken from

The book looks damned impressive from the outside; it's 960 pages! Surely, this must be the most complete discussion of the hacking and phreaking subculture ever published! The cover, a sunset-colored affair with barbed wire and neat lettering, tells you it'll have a more up-to-date sensibility. Everything said this would be my next purchase.

My heart sank as I read through the book.

The vast, vast, VAST (over two-thirds) majority of the book consists of the first paragraph of BBS textfiles, with a line telling you the filename included on the CD that comes with the book. In some cases, Chirillo deigns to visit upon you a single-line description, but many don't even have that. So now, imagine this: page after page of filenames, then descriptions, then the first paragraph, of files located on a CD that's in the back of a book. What a horrible waste! There's a computer "glossary" in the back which looks suspiciously like similar documents available on the web, although I can't be sure. Also, there are a few tiny chapters giving general descriptions of the hacker and phreaking subculture. If you were to remove the filenames and descriptions and paragraphs, I doubt this book could get past 100 pages, if that.

Thanks a lot, we are very happy to have this book in our library!

I've been in IT for over 25 years, and in that time I've read a lot of technical books. "File System Forensic Analysis" is not only the best book I have read on computer forensics, it's probably the best technical work in ANY field I've ever read. It's thoroughly researched, clearly written, and contains virtually no fluff. The numerous rave reviews it has received are well-deserved.

My only quibble is the short, but seemingly gratuitous section on hexadecimal and decimal arithmetic. If you're ready for this book, you'll already know this stuff. But, that's only a few pages in a book that's otherwise packed with real substance.

I can't say enough good things about this book and author. The material is beautifully laid out and the writing style is fluid and effortless. The author has a real talent for using metaphors and figures to illustrate elusive concepts.

All but the very rarest file systems are covered, and numerous 'screenshots' show how to use the Linux command prompt and get your hands dirty exploring disks on your own.

While this book is a gold standard for digital forensic examiners, it would also be valuable to the computer enthusiast who's interested in things such as what happens to their hard drive when they format it, exactly what happens during the boot process, etc.

I've had 3 courses in digital forensics, and this book gives an in-depth discussion of disk level concepts (HPA, FAT, MFT, etc) that were merely glossed over in my formal studies.

Great resource on file systems and file system data structures, although I wish it covered Apple's HFS+.

Great Book. Great job Brian. A must have in your bookshelf if you are serious about computer forensics.
It only lacks two things to be perfect: a reiserfs and a HFS+ sections.

Only an error. GPT partition schema isn't used only in big servers. New Intel Macintoshes use it by default for their boot drive.

How many times have you disposed of items containing personal information (e.g., credit card statements, Electric Bills, etc.) without destroying them first or utilized a personal computer in a public place (e.g., Airport, Train Station, etc.)? After reading Identity Theft you may think twice. John Vacca presents an informative text that enlightens the reader on current methods employed by identity predators and how to protect yourself and your business. Mr. Vacca also addresses the Internet environment and the increasing use of E-Commerce, and exposes the dangers that exist both from the user and developer perspectives. For the IT professional, Identity Theft offers many informative essays on the use of digital signatures, Smart Cards, Optical Cards and Encryption as protection methods. I highly recommend this book to anyone!

This book provides invaluable info for individuals, business and organizations who want to protect themselves from identity theft. And if you happen to bu among those unlucky people whose identity has already been stolen, this book will help you recover (and quickly) from the damage. Easy to understand and yet detailed enough to cover all the bases - from emerging threats to ongoing scames. Also tells readers how to plan effective anti-theft policies and systems. Well worth your time!

This book is quite timely and very thorough, going from defining the problem to providing solutions. Everyone should take note of the valuable information provided to avoid this growing problem. From a professional standpoint, I was particularly impressed with some of the technical solutions Mr. Vacca provided.

This book is right on the money. I personally experienced an identity theft to the tune of [$$$] on my credit card. Everything described in this book is consistent with my experience and information shared to me by the bank representative and the detective assigned to my case. I strongly recommend that anyone who conducts electronic commerce (who doesn't!)to read this book. This book clearly describes the many elements of personal risk and the controls one can demand and implement for security and peace of mind. Highly recommended.

With current advanced technology across the world, crime is also changing in most countries and more sophisticated counter measures are required. John explores the main victim of crime, which is our own identities and it's vulnerability to theft. He gives a full account of how it is done and how to avoid it. Another great book by John.

This is a general comment regarding Hacking Exposed series. I owned Hacking Exposed (first edition) and then I moved to the more specific Hacking Exposed books, so now I've got Hacking Linux Exposed, Hacking Windows 2000 Exposed and hacking web Applications exposed. All those books absolutely worth it, do not hesitate to buy any of them.

Don't run Windows without it. An in-depth windows security book written for those who do not understand geek. Easy to read and chocked full of info provided to save you from common (and not so common) windows sins. Definitely for the home and enterprise network user/admin.

If you are responsible for a Windows 2000 server and do not have this book, you are asking for trouble. Get it today!!!!

Excellent book which helps you secure your system from the attacker's point of view. It makes you think as a hacker to be able to find the vulnerabilities in your machine/network.

My security officer loves this book because it allows him to send me emails guaranteed to keep me up at night. ;-)

I finally picked up this book last year and throughoughly enjoyed it. I keep referring to it because the examples build up to the point of qualified proof of concept. The examples also are different enough from the other ones that are easy to find with Google, so between the two you get a complete view of the vulnerable issue.

The book's title should be obvious enough; this is NOT a book of defenses. However, if you understand these attacks you will be better equiped to deal with them when they happen. This book is no replacement for hands-on training in person with a qualified instructor such as at the SANS Institute, but it is an excellent supplement.

Its a great place to start...and works its way through some pretty indepth concepts. The great part is that for the beginner it is step by step....and they tell you were to download everything you will need. Anyways loved it, read it twice.

I have been around the software industry now for almost 20 years and every now and then I find a book where I learn exciting things, this is one of those books. It reminds me of the early days of low level Windows programming but with very up to date information on the OS and how to apply it. The book is obviously designed to attract hackers - both black and white hats - however it does do a good job diving on the internals of the Posix and Windows subsystems. If you like low level stuff this book is for you.

Not an easy read if you're not already familiar with programming and operating system concepts, but then if you are an IT security professional you'd better be, and the book explains why.

I read Rootkits: Subverting the Windows Kernel last year, but waited until I read Joseph Kong's Designing BSD Rootkits before reviewing both books. In a head-to-head comparison, I thought Kong's book was easier to comprehend and directly covered the key techniques I wanted to see. If I could give this book 4 1/2 stars I would, but Amazon doesn't allow that luxury.

Hoglund and Butler should be commended for writing this book. It really does assemble the parts (meaning techniques and code) necessary to implement a Windows rootkit, at least prior to Windows Vista. My only concern is that, at times, the authors are not as clear as I hoped they might be. This is probably due to the fact that they are two of the best rootkit writers on the planet, so they probably do not remember what it was like to not understand "hooking" and other techniques.

In some ways Rootkits is probably a book best suited for other experts (like many who wrote reviews here). That leaves beginners (like myself) wishing for a little more foundation or direct language prior to reading about implementation tricks.

One of the greatest strengths of this book, however, is the degree to which it exposes the internal workings of Windows. For greatest effect it's probably worth reading Microsoft Windows Internals, Fourth Edition by Russinovich and Solomon first.

Note that although I found the direct approach of the BSD rootkits book better for my learning style, this book by Hoglund and Butler is deeper in several areas. In fact, those who liked the BSD rootkits book would do well to read its Windows counterpart to learn tricks from Hoglund and Butler.

This book is a great introduction to the world of NSM (Network Security Monitoring). The basic idea is that security defenses will fail at some point and that to realistically improve the security posture of an organization NSM is needed.



The book starts with an introduction to risk analysis. It then describes how to build an NSM platform using open source tools, FreeBSD, and network taps / SPAN ports. It also includes some case studies and a lot of material on the operational aspects of running a NSM team.



I really like Richard's style such as his footnotes with related papers.

Be sure to check out the author's blog at http://taosecurity.blogspot.com/.

Cuts right to the chase. Worthy addition to any serious network security library.

A problem with the approach many people take to network and security monitoring is that they expect it to be plug and play. Install the software and then stop attackers in their tracks. If only it was so easy. But one can't simply install monitoring software or an IDS, collect data and expect it all to correlate and correct itself.

The beauty of The Tao of Network Security Monitoring : Beyond Intrusion Detection is that it shows how network monitoring requires a strong discipline to truly have an effect on security.

The book is written for the person; primarily a system administrator or security engineer whom truly wants to use an IDS to manage and secure their network. This is not an introductory text, rather it is written for someone not scared of downloading and compiling code. If you are looking for an intro to IDS usage, this is not the book for you. This is a book about someone who has an IDS, and needs to find a way to use it and tune it for maximum usage.

The book has a near endless supply of network traffic capture and analysis tools, techniques and network topologies. Beyond simply providing a list of software tools, the book shows how to install and configure a variety of these tools. Rather than wasting pages and screen shots detailing how to download and install the software mentioned; the book shows how to use the tool in the context or Tao of security monitoring.

In addition, the author emphasizes the point that the people are a crucial aspect of effective network monitoring. The ultimate success of any IDS is directly tied to the analyst behind the console. They are the ones making the decision on how to respond to an incident, and if they are not appropriately trained, all of the hardware and software will only provide a fraction of it potential.

With that, The Tao of Network Security Monitoring should be considered required reading for anyone using an IDS or responsible for its use. If you have staff using an IDS, ensure that they have read The Tao of Network Security Monitoring as it will educate them in truly understanding how to monitor a network.

It's hard to add much that isn't said by the 17 other 5 star reviews, but this is easily my favorite security book. Aside from ascribing me to the theories of NSM -- that visibility into the network provides the critical information required to accurately diagnose and respond to security issues -- and being an excellent read, this book is also a fantastic reference. As I've implemented NSM in my environment, I haven't stopped referencing the book to find tools that might be better suited to jobs, or to find tools that have all but vanished from the face of the earth. I thoroughly recommend this book to anyone responsible for the security of any size network.

I am not sure how I was first introduced to the author, Mr. Bejtlich. I cannot remember if I first noticed his work via his excellent blog or this, his first book. Either way, after reading "The Tao of Network Security" by Richard Bejtlich, I feel he has prepared and educated me in a way unlike any other author. The first item you must recognize is the tone that this book dictates right from the outset. The book begins by citing many different authors, their books and their value. I knew immediately that I was in for a treat. And I was right!

I will not attempt to offer a full review as I feel one can gather from other reviews the value of this book. The book is basically broken up into 5 sections. The first 100 pages is an intro to Network Security Monitoring (NSM). The second part is dedicated to the different ways to monitor - I particularly like (and agree) with how the author broke up the different ways of cataloguing NSM - full content, session, and alert. The third section describers NSM processes and the fourth section describes NSM people.

The book, overall, is a superb resource. Not a page goes by without some screenshots of TCPDump, UNIX configs or diagrams. I have heard others' mention they have been given this book to read in their classroom study and I can see why.

I give this book 5 pings out of 5:
!!!!!